Operant AI has discovered a new zero-click attack called Shadow Escape that can steal data through AI assistants like ChatGPT, Claude, and Gemini. The exploit targets the Model Context Protocol (MCP), allowing hackers to access and leak sensitive enterprise data without any user action.